Enterprise

Question 1

Analyze friendly comms to help CCs protect critical information and perform data loss analysis

Answer 1

68 NWS

Question 2

What MAJCOMS does the 83rd cover?

Answer 2

AFMC, ACC, USAFE, AFRC, AFDW

Question 2

Consists of VPN, Firewalls, Intrusion Detection System /IOP, Network Traffic Security Analyzer, and COOP functionality

Answer 2

IMS (Integrated Management Site)

Question 3

What organizes and stores data to minimize redundancy in the database in the AFNet Infrastructure?

Answer 3

ArcSight

Question 4

Assess the integrity, security, and defense posture of AF and DoD cyber assets

Answer 4

Cyber Vulnerability Assessment Mission

Question 5

Acts as the primary intelligence support element to the 33NWS

Answer 5

35 IS

Question 6

Mission: Provide mission assurance to the warfighter by operating, sustaining, and defending AF enterprise networks

Answer 6

561 NOS and 83 NOS

Question 7

What is capable of sending emails, pages and calls cell phones when events meet rule conditions in the AFNet Infrastructure?

Answer 7

ArcSight

Question 8

Detect and counter threats in real-time

Answer 8

Defense Information Systems Agency (DISA) Host Based Security System (HBSS)

Question 9

What team is responsible for building the NIR and the CTA?

Answer 9

NetOps Threat Analysis Team (NTAT)

Question 10

What is Defense Information Systems Agency (DISA) Host Based Security System (HBSS) based on?

Answer 10

McAfee host security

Question 11

Who’s mission is: Establish, plan, direct, coordinate, assess, command, and control cyberspace operations and capabilities in support of Air Force and Joint requirements?

Answer 11

624th

Question 12

What allows for filtering at multiple levels in the AFNet Infrastructure?

Answer 12

ArcSight

Question 13

Typically produced internal to Fusion and 33 NWS based on dynamic changes in adversary tactics, reporting from external organizations

Answer 13

CTA (Computer Threat Alerts)

Question 14

SAN connectivity with 1PB stored on NAS for up to 180 days

Answer 14

Network Traffic Security Analyzer (NTSA)

Question 15

Provides common OS baseline, reduced implementation time, and added standard GPO’s across the AFNET

Answer 15

SDC (Standard Desktop Configuration)

Question 16

Placed inline, can block automatically, can host third party toolsets

Answer 16

IOP (Information Operations Platform)

Question 17

Provides out of band management & monitor all equipment deployed by AFNET Increments

Answer 17

IMS (Integrated Management Site)26th and 33rd

Question 18

What MAJCOMS does the 561st cover?

Answer 18

AFSPC, PACAF, AMC, AETC, AFGSC

Question 19

Mission: Deliver innovative and integrate cyber capabilities equipping the warfighter to dominate in cyberspace

Answer 19

90 IOS

Question 20

Analysis of exfiltrated data

Answer 20

CORA (Cyber Operational Risk Assessment)

Question 21

Standardize AFNet Infrastructure that’s CONSTANTLY EVOLVING

Answer 21

CITS

Question 22

Backbone of gateways, located at 33rd NWS and 26th NOS

Answer 22

IMS (Integrated Management Site)

Question 23

First generation IPS that 33rd NWS uses to tailor effects on the AFNET

Answer 23

IOP (Information Operations Platform) Fidelis

Question 24

Mission: Operate and maintain base level network infrastructure, provide client level support, and touch maintenance for enterprise equipment

Answer 24

NCC/CFP

Question 25

Inspect inbound web traffic, accelerate web-based applications

Answer 25

Reverse Proxy (Web Proxy)

Question 26

Detect, characterize and engage adversary presence on AF and DoD cyber assets

Answer 26

Hunter Mission

Question 27

Structure: Crew Commander/Operations Controller/Cyberspace Analyst/Cyberspace Operator/Cyberspace Ops Tech

Answer 27

33 NWS

Question 28

Responsible for “west coast” MAJCOMs (AFSPC, PACAF, AMC, AETC, AFGSC)

Answer 28

561 NOS

Question 29

Integrated VPN, IDS/IPS, URL Filtering, Antivirus/Antispyware, and file blocking

Answer 29

firewalls (Palo Alto 5060)

Question 30

What does the NTAT consist of?

Answer 30

NIR, CTA, NAT, CTAT

Question 31

Who develops tools (programmers)

Answer 31

90 IOS

Question 32

What provides Deep Session Inspection (COTS product) for data leakage prevention/detection, IDS/IPS and has 13 content analyzers. Used in IOP

Answer 32

Fidelis

Question 33

Used for management and consists of: Asset Baseline Monitor, Policy Monitor, Device Control Module, Host Intrusion Prevention Service, AV, Rogue System Detection

Answer 33

Defense Information Systems Agency (DISA) Host Based Security System (HBSS)

Question 34

Prevent, Detct, Respond (“PDR”)

Answer 34

33 NWS

Question 35

Who has operational authority of cyber as delegated by 24th AF for conducting full spectrum cyberspace operations?

Answer 35

624th

Question 36

What organization has the NetOps Threat Analysis Team (NTAT)?

Answer 36

35 IS

Question 37

Mission: Employs combat-trained, mission ready intel professionals world-wide to perform defensive cyber intel

Answer 37

68 NWS

Question 38

Who has the Hunter Mission and the Cyber Vulnerability Assessment Mission

Answer 38

92 IOS

Question 39

Inbound threat protection/outbound encryption/block spam\protection from malware,zero-day threats, phising, viruses, and DoS attacks.

Answer 39

mail relays

Question 40

This product is published on AF cat I (root level) and II (user level) computer intrusions

Answer 40

NIR (Network Intelligence Report)

Question 41

Gathers and analyzes info from multiple sources to provide profiles on extremist website characterizations and associated cyber personas of interest

Answer 41

CTAT (Cyber Threat Analysis Team)

Question 42

At AF Gateways and collects reported events from all AF Gateway Information Assurance components

Answer 42

SIM (Security Information Manager): ArcSight

Question 43

Single AF unit operating the WAN & gateways providing network connectivity & security

Answer 43

26 NOS

Question 44

Used for transport

Answer 44

external and internal routers (Cisco ASR 1006)

Question 45

What is each host in HBSS called?

Answer 45

Sensor

Question 46

Full packet capture/logging and can store data over extensive periods

Answer 46

Network Traffic Security Analyzer (NTSA)(DeepSee)

Question 47

What, in the AFNet Infrastructure is the user interface to the SIM?

Answer 47

ArcSight

Question 48

Mission: To produce effects for the Air Force and Combatant Commands in, through, and from cyberspace by employing synchronized network defense operations to detect, respond, and prevent network intrusions

Answer 48

33 NWS

Question 49

Designed to provide an information infrastructure and network management/defense capabilities. Provide real time C2

Answer 49

CITS

Question 50

First line of defense against external threats and last line of defense against internal threats

Answer 50

26 NOS

Question 51

Responsible for “east coast” MAJCOMs (AFMC, ACC, USAFE, AFRC, AFDW)

Answer 51

83 NOS

Question 52

Mission: provide mission assurance for AF MAJCOMs & Cyber Commanders through Network Operations and Network Defense on the AF Enterprise Network.

Answer 52

26 NOS

Question 53

Provides tactical and strategic look at current real world activities as it relates to defense

Answer 53

NAT (Network Activity Team)

Question 54

Content filtering, web caching, bandwidth management

Answer 54

Forward Proxy (Web Proxy)

Question 55

What appliance makes up the Network Traffic Security Analyzer

Answer 55

Solera DeepSee Appliance

Question 56

Mission: Deliver actionable all-source analysis and integration to Service, Joint, and Allied cyberspace and Info Ops; and conduct Computer Network Operations in support of Air Force requirements

Answer 56

35 IS